CVE-2025-57295

HIGH

H3C Magic Nx15 Firmware - Privilege Escalation

Title source: rule

Description

H3C devices running firmware version NX15V100R015 are vulnerable to unauthorized access due to insecure default credentials. The root user account has no password set, and the H3C user account uses the default password "admin," both stored in the /etc/shadow file. Attackers with network access can exploit these credentials to gain unauthorized root-level access to the device via the administrative interface or other network services, potentially leading to privilege escalation, information disclosure, or arbitrary code execution.

References (2)

[Exploit, Third Party Advisory] https://github.com/ZZ2266/.github.io/blob/main/H3C/readme.md

View Exploit ZIP pw:eip

[Product] https://www.h3c.com/cn/d_202504/2407151_30005_0.htm

Scores

CVSS v3 8.0

EPSS 0.0009

EPSS Percentile 25.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-521 CWE-1188

Status published

Products (1)

h3c/magic_nx15_firmware nx15v100r015

Published Sep 18, 2025

Tracked Since Feb 18, 2026